[oss-security] [kubernetes] CVE-2024-3177: Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin

}{end}"` Additional Details See the GitHub issue for more details: <https://github.com/kubernetes/kubernetes/issues/118640> https://github.com/kubernetes/kubernetes/issues/124336 Acknowledgements This vulnerability was reported by tha3e1vl. The issue was fixed and coordinated by the f

[oss-security] [kubernetes] CVE-2024-3744: azure-file-csi-driver discloses service account tokens in logs

.@kubernetes.io *Acknowledgements* This vulnerability was patched by Weizhi Chen @cvvz from Microsoft. Thank You, Rita Zhang on behalf of the Kubernetes Security Response Committee

[oss-security] [kubernetes] CVE-2025-4563: Nodes can bypass dynamic resource allocation authorization checks

is vulnerability has been exploited, please contact secur...@kubernetes.io Thank You, Rita Zhang on behalf of the Kubernetes Security Response Committee Additional Details See the GitHub issue for more details: https://github.com/kubernetes/kubernetes/issues/132151 Acknowledgements This vulnera

[oss-security] [kubernetes] CVE-2025-7342: VM images built with Kubernetes Image Builder Nutanix or OVA providers use default credentials for Windows images if user did not override

Image Builder project. Thank You, Rita Zhang on behalf of the Kubernetes Security Response Committee